Allow a smoke test to specify required authorization

Such as health checks can specify their required authorization using the method "RequireAuthorization()", it would nice to have the capacity to protect the "/smoke" endpoint by specifying an authorization mecanism as any other controller within a Web api.